Bulletin ID
Security Updates Available for Adobe Digital Editions | APSB20-07
|
Date Published |
Priority |
---|---|---|
APSB20-07 |
February 11, 2020 |
3 |
Summary
Affected product versions
Product |
Version |
Platform |
---|---|---|
Adobe Digital Editions |
4.5.10 and below |
Windows |
Solution
Adobe categorizes these updates with the following priority ratings and recommends users update their installation to the newest version:
Product |
Version |
Platform |
Priority |
Availability |
---|---|---|---|---|
Adobe Digital Editions |
4.5.11 |
Windows |
3 |
- Customers can download the update from the Adobe Digital Editions download page, or utilize the product’s update mechanism when prompted.
- For more information, please reference the release notes.
Vulnerability details
Vulnerability Category |
Vulnerability Impact |
Severity |
CVE Numbers |
---|---|---|---|
Buffer Errors |
Information Disclosure |
Important |
CVE-2020-3759 |
Command Injection |
Arbitrary Code Execution |
Critical |
CVE-2020-3760 |
Acknowledgments
Adobe would like to thank Zhongcheng Li(CK01) of Topsec Alpha Team for reporting these issues and for working with Adobe to help protect our customers.